Security Consultant in Data Protection

at  Ivy Partners

ABOUT US :

Ivy Partners is a Swiss advisory company that contributes to the evolution of companies in their strategic, technological and organisational challenges.
Our mission is to provide our employees with a fulfilling and supportive career environment, where everyone is valued and empowered through training and opportunities for growth.

As an Security Consultant in Data Protection at Ivy Partners, you will be in charge of :

• Ensuring the consideration and implementation of information security requirements and data protection measures.
• Promoting ISDS (Information Security and Data Security) understanding and awareness within an ICT project.
• Identifying potential legal and regulatory requirements affecting information and ICT security.
• Identifying and periodically reassessing information risks based on threat and vulnerability assessments within the ICT project.
• Monitoring and supporting information security activities within the ICT project (e.g., development, procurement).
• Reviewing and measuring the effectiveness of information security measures.
• Checking compliance with security policies and requirements by the ICT project.
• Documenting test and measurement results.
• Identifying, classifying, and assessing risks in the vicinity of protected objects (especially data and applications).
• Assigning responsibilities (for service recipients and service providers) to the protected objects (system managers, application managers, owners of data collections).
• Advising those responsible for the implementation of security measures.
• Developing any necessary security measures that supplement basic protection security measures.
• Monitoring the implementation, compliance, and effectiveness of safety measures.
• Participating in specialist internal working groups.
• Assisting in the preparation of special security agreements with external service recipients/providers.
• Evaluating and reviewing the compatibility of projects (studies, projects, and maintenance) in relation to ICT security.
• Developing alternative solutions and disaster plans in accordance with business continuity management requirements in cooperation with those responsible within the office.
• Assisting in quantifying provable security efforts.
• Ensuring that processed reportable data collections are reported by the owner of the data collection.

Profile :

• You are Hermes and/or Togaf certified.
• Fluent in English, French is an advantage.
• Strong expertise in information security and data protection, with experience ensuring their implementation within ICT projects.
• Proven ability to identify and address potential legal and regulatory requirements affecting information and ICT security.
• Skilled in assessing information risks based on threat and vulnerability assessments, and reassessing these risks periodically.
• Proficient in monitoring and supporting information security activities, including development and procurement.
• Experienced in reviewing and measuring the effectiveness of information security measures, ensuring compliance with security policies and requirements.
• Competent in documenting test and measurement results, identifying, classifying, and assessing risks related to protected objects (data and applications).
• Effective in assigning responsibilities to service recipients and providers, advising on the implementation of security measures, and developing supplemental security measures.
• Adept at monitoring the implementation, compliance, and effectiveness of safety measures, and participating in specialist internal working groups.
• Skilled in preparing special security agreements with external service recipients/providers.

Please refer the Job description for details